Skip Menu |
 

This queue is for tickets about the IO-Socket-SSL CPAN distribution.

Report information
The Basics
Id: 83437
Status: resolved
Priority: 0/
Queue: IO-Socket-SSL

People
Owner: Nobody in particular
Requestors: sri [...] cpan.org
Cc:
AdminCc:

Bug Information
Severity: (no value)
Broken in: 1.84
Fixed in: (no value)



Subject: Client side SNI broken on OS X
Download (untitled) / with headers
text/plain 285b
Hi, Looks like the new version check in IO::Socket::SSL 1.84 has broken client side SNI support on OS X (Mountain Lion), which ships with OpenSSL 0.9.8r, and which does support SNI. In fact, it used to work just fine with older versions of IO::Socket::SSL. Cheers, Sebastian Riedel
Download (untitled) / with headers
text/plain 811b
On Mon Feb 18 19:56:33 2013, SRI wrote: Show quoted text
> Hi, > > Looks like the new version check in IO::Socket::SSL 1.84 has broken > client side SNI support on > OS X (Mountain Lion), which ships with OpenSSL 0.9.8r, and which does > support SNI. In fact, it > used to work just fine with older versions of IO::Socket::SSL.
Hi Sebastian, I had to disable client side SNI support for anything below 1.0.0. While the majority if sites work with SNI in 0.9.8, there are some sites like www.greencart.in, which are broken even with the latest 0.9.8y. See also the Changelog: | v1.84 2013.02.15 | - disabled client side SNI for openssl version < 1.0.0 because of RT#83289 Unfortunatly there is no openssl bug I might point to, it looks like they just fixed the problem w/o even realizing that there was one. Cheers, Steffen
Request closed, as feature had to be disabled because of bug in openssl


This service is sponsored and maintained by Best Practical Solutions and runs on Perl.org infrastructure.

Please report any issues with rt.cpan.org to rt-cpan-admin@bestpractical.com.